steerdev

privacy policy

last updated: March 2026

1. information we collect

we collect information you provide directly: account details (name, email, organization), usage data, and content you create through the Service. we also collect technical data such as IP address, browser type, device information, and session data automatically.

2. how we use your information

we use your information to: provide and improve the Service, communicate with you about your account, ensure security and prevent abuse, generate aggregated analytics, and comply with legal obligations. we do not sell your personal data.

3. your code and data

3.1 repository access

steerdev processes specifications, tasks, and agent activity metadata to provide the Service. we do not access, read, or store the source code in your repositories. agent orchestration data is used solely to coordinate workflows.

3.2 no AI training

steerdev does not use your code, specifications, outputs, or any Customer Data to train, develop, or improve AI or machine learning models. this commitment applies universally to all users and plan tiers. we do not share, license, or sell your data to third parties for model training purposes.

3.3 aggregated data

we may generate aggregated, de-identified usage statistics (e.g., platform-wide workflow patterns, feature adoption) for internal analytics and product improvement. such data cannot be linked to any specific customer, user, or codebase.

4. data sharing

we do not share your personal information with third parties except:

  • service providers who help us operate the platform (hosting, analytics, payment processing), bound by data processing agreements
  • when required by law, regulation, or valid legal process
  • with your explicit consent

we will notify you of law enforcement requests for your data unless legally prohibited from doing so.

5. data security

we implement industry-standard security measures including: encryption in transit (TLS 1.2+) and at rest (AES-256), role-based access controls, regular security audits, and infrastructure monitoring. no system is perfectly secure, and we cannot guarantee absolute security.

6. data retention

we retain your data for as long as your account is active or as needed to provide the Service. upon account deletion, we will remove your personal data and Customer Data within 90 days, except where retention is required by law. aggregated, de-identified data may be retained indefinitely.

7. cookies

we use essential cookies for authentication and session management. we use analytics cookies to understand how the Service is used. you can control cookie preferences through your browser settings. we do not use advertising or tracking cookies.

8. your rights

regardless of your location, you have the right to:

  • access your personal data held by steerdev
  • correct inaccurate personal data
  • delete your personal data and account
  • export your data in a standard format
  • object to processing of your personal data
  • withdraw consent where processing is based on consent

to exercise these rights, contact us at privacy@steerdev.com. we will respond within 30 days.

9. international data transfers

if you are located outside the United States, your data may be transferred to and processed in the United States. we ensure appropriate safeguards are in place for international transfers in compliance with applicable data protection laws, including GDPR and equivalent frameworks.

10. children's privacy

the Service is not directed to individuals under 16. we do not knowingly collect personal data from children. if we become aware that we have collected data from a child, we will delete it promptly.

11. changes to this policy

we may update this policy from time to time. we will notify you of material changes at least 30 days before they take effect via email or through the Service. your continued use after the effective date constitutes acceptance of the updated policy.

12. contact

for privacy-related questions, contact us at privacy@steerdev.com.